From: Raspbian automatic forward porter <root@raspbian.org>
Date: Wed, 20 Aug 2025 14:59:51 +0000 (+0100)
Subject: Merge version 25.03.0-4+rpi1 and 25.03.0-5 to produce 25.03.0-5+rpi1
X-Git-Tag: archive/raspbian/25.03.0-5+rpi1^0
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=30c374dd0325d7e8503294183d15f8310c384fdd;p=poppler.git

Merge version 25.03.0-4+rpi1 and 25.03.0-5 to produce 25.03.0-5+rpi1
---

30c374dd0325d7e8503294183d15f8310c384fdd
diff --cc debian/changelog
index f368515,517f5b5..fc9d426
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,9 -1,12 +1,19 @@@
- poppler (25.03.0-4+rpi1) trixie-staging; urgency=medium
++poppler (25.03.0-5+rpi1) trixie-staging; urgency=medium
 +
 +  [changes brought forward from 24.08.0-2+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Tue, 17 Sep 2024 22:18:17 +0000]
 +  * Update symbols file for raspbian.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Thu, 05 Jun 2025 19:03:10 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Wed, 20 Aug 2025 14:59:51 +0000
++
+ poppler (25.03.0-5) unstable; urgency=high
+ 
+   [ Marc Deslauriers ]
+   * SECURITY UPDATE: DoS via reference count overflow
+     - debian/patches/CVE-2025-52886.patch: limit amount of annots per
+       document/page in poppler/Annot.cc, poppler/Page.cc.
+     - CVE-2025-52886 (Closes: #1108784)
+ 
+  -- Jeremy Bícha <jbicha@ubuntu.com>  Mon, 28 Jul 2025 10:55:12 +0200
  
  poppler (25.03.0-4) unstable; urgency=high